I've configured an ASA5510 for vpn access both from the internet and from a wireless lan on the same device.
However I've got two different crypto maps, each one applied to a different interface of the asa, and two tunnel groups for the two groups of users.
Now I was looking for a way to link each tunnel group to a specific crypto map or interface.
In other words, I want to be sure that a user of the wireless vpn cannot get corporate access through the internet simply changing the ip address on the profile and installing it on the home computer, that is exactly what it could happen now.
Do I need to split the profiles on two different devices or there is a way that I cannot see?